API security and protecting the DevSecOps pipeline, Akto raises $4.5M in funding 

Join us on November 9 to learn how to successfully innovate and achieve efficiency by upskilling and scaling citizen developers at the Low-Code/No-Code Summit. Register here.


As the attack surface continues to expand across the cloud, API security is becoming an ever more important concern. Salt Security has reported a reported a 681% increase in API attack traffic over the past year, as overall API traffic increased by 321%.

Cybersecurity provider Akto, which today announced raising $4.5 million in seed funding, aims to mitigate these cyber threats by providing organizations with a platform to create a real-time inventory of APIs to secure the entire DevSecOps pipeline. 

Akto’s solution takes less than a minute to deploy and creates an automatic inventory of APIs, which security teams can use to detect PII data leaks and test for misconfigurations during development. 

For enterprises, this solution provides a scalable approach to API security, giving security teams the ability to test 1,000 of APIs at once with a single AI engine. 

Event

Low-Code/No-Code Summit

Learn how to build, scale, and govern low-code programs in a straightforward way that creates success for all this November 9. Register for your free pass today.

Register Here

Getting a grip on API security 

The announcement comes as more and more organizations are struggling to maintain visibility over their APIs, with research showing 30% of all malicious attacks target shadow APIs. 

As more attackers look to target APIs to gain access to sensitive information, the only way to ensure complete protection is for enterprises to catalog APIs throughout the environment, and systematically secure them. 

“Security teams don’t have [a] continuous inventory of APIs. There is constant back and forth between developers and security teams to have an updated inventory of APIs,” said co-founder of Alto, Ankita Gupta. 

“In most cases, there is no inventory of APIs and security teams try to maintain an excel sheet of inventory from memory which means they only cover 10-20% of APIs,” Gupta said. 

Akto attempts to fix this problem by mirroring customer’s traffic with AI and Machine Learning (ML) to create a real-time inventory of APIs. At the same time, it also provides a scalable solution for automating API testing for 1000s of APIs, enabling security teams to continuously test APIs throughout the CI/CD pipeline. 

A look at the API security market 

Akto is just one of many providers operating in the API management market, which researchers estimate will grow from $4.5 billion in 2022 to reach a value of $13.7 billion by 2027. 

One of the organization’s main competitors in the space is Noname Security, which last year raised $135 million in Series C funding and achieved a $1 billion valuation for a platform designed to automatically discover and inventory APIs.

Noname Security’s solution can monitor real-time traffic with AI to detect leakage, policy violations, suspicious behavior and cyber attacks that put protected information at risk. 

Another key competitor is Traceable AI, which offers a platform to discover and test APIs with analytics capabilities. Earlier this year Traceable AI announced it has raised $60 million as part of a Series B funding round

However, Gupta argues that Akto’s rapid deployment and plug-and-play capabilities separates it from existing solutions.

“We are the world’s first plug and play API security platform. What that means is that it takes only 60 seconds to deploy Akto and within 2 mins security teams will be able to see their API inventory and scan for vulnerabilities,” Gupta said. 

VentureBeat’s mission is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Discover our Briefings.

Source